Google Git
Sign in
apache / guacamole-client / 0091bb1aea14c567c8166f0ed8eadf7c31b6bd6e^1..0091bb1aea14c567c8166f0ed8eadf7c31b6bd6e / .
commit0091bb1aea14c567c8166f0ed8eadf7c31b6bd6e[log] [tgz]
authorVirtually Nick <necouchman@users.noreply.github.com>Fri Aug 21 07:22:26 2020 -0400
committerGitHub <noreply@github.com>Fri Aug 21 07:22:26 2020 -0400
treec8f4d14c7170e947068954a10c8882ccb540bfd4
parent1af7b158257c3290dfc3258de05eff92f54beddb [diff]
parentb07356164c925e1702d562985c928367e328f8d6 [diff]
GUACAMOLE-1149: Merge correct regression in TOTP support if user accounts are not automatically created.


diff --git a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/JDBCAuthenticationProviderService.java b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/JDBCAuthenticationProviderService.java
index 3f54be8..2f38ebe 100644
--- a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/JDBCAuthenticationProviderService.java
+++ b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/JDBCAuthenticationProviderService.java

@@ -133,7 +133,8 @@
             
             // If auto account creation is enabled, add user to DB.
             if (environment.autoCreateAbsentAccounts()) {
-                userService.createObject(new PrivilegedModeledAuthenticatedUser(user.getCurrentUser()), user);
+                ModeledUser createdUser = userService.createObject(new PrivilegedModeledAuthenticatedUser(user.getCurrentUser()), user);
+                user.setModel(createdUser.getModel());
             }
             
         }

diff --git a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/user/UserService.java b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/user/UserService.java
index 50b9e42..d22e909 100644
--- a/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/user/UserService.java
+++ b/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-base/src/main/java/org/apache/guacamole/auth/jdbc/user/UserService.java

@@ -260,7 +260,19 @@
             ModeledUser object, UserModel model) throws GuacamoleException {
 
         super.beforeUpdate(user, object, model);
-        
+
+        // Refuse to update if the user is a skeleton and does not actually
+        // exist in the database (this will happen if the user is authenticated
+        // via a non-database authentication provider)
+        if (object.isSkeleton()) {
+            logger.info("Data cannot be stored for user \"{}\" as they do not "
+                    + "have an account within the database. If this is "
+                    + "unexpected, consider allowing automatic creation of "
+                    + "user accounts.", object.getIdentifier());
+            throw new GuacamoleUnsupportedException("User does not exist "
+                    + "within the database and cannot be updated.");
+        }
+
         // Username must not be blank
         if (model.getIdentifier() == null || model.getIdentifier().trim().isEmpty())
             throw new GuacamoleClientException("The username must not be blank.");